FriendlyRoboCopy: A GUI to RoboCopy for computer forensic investigators

被引：3

作者：

LaVelle, Claire ^{[1
]}

Konrad, Almudena

机构：

[1] USN, Postgrad Sch, Monterey, CA 93940 USA

[2] Mills Coll, Dept Math & Comp Sci, Oakland, CA 94613 USA

来源：

DIGITAL INVESTIGATION | 2007年 / 4卷 / 01期

关键词：

digital forensics; network forensics; drive mapping; RoboCopy application; microsoft OS forensics; network system administration; NAS; computer cluster; graphical user interface; perl; open source application;

D O I：

10.1016/j.diin.2007.01.001

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

One of the most pressing challenges in digital investigations today is the extraction and forensic preservation of a subset of data on computer clusters and other large storage systems. As the number and capacity of computer systems increases, it is no longer feasible to create forensic duplicates of every system in their entirety. Although forensic tools are being developed to cope with such situations, they do not support all file systems. Experienced digital investigators use tools such as RoboCopy to preserve a subset of data on target systems, and take steps to document their process and results. This paper explores the need for these tools in digital investigations, and demonstrates the strengths and weaknesses of using RoboCopy to acquire data on a network share. This paper then introduces FriendlyRoboCopy, which provides an effective, user-friendly interface to RoboCopy that addresses the requirements of forensic preservation. (c) 2007 Elsevier Ltd. All rights reserved.

引用

页码：16 / 23

页数：8

共 50 条

[41] Engineering an online computer forensic service
Bhoedjang, R. A. F.
van Ballegooij, A. R.
van Beek, H. M. A.
van Schie, J. C.
Dillema, F. W.
van Baar, R. B.
Ouwendijk, F. A.
Streppel, M.
DIGITAL INVESTIGATION, 2012, 9 (02) : 96 - 108
[42] A memory-based game-theoretic defensive approach for digital forensic investigators
Hasanabadi, Saeed Shafiee
Lashkari, Arash Habibi
Ghorbani, Ali A.
FORENSIC SCIENCE INTERNATIONAL-DIGITAL INVESTIGATION, 2021, 38
[43] Brain Computer Interface as a Forensic Tool
Al-Sagban, Mariam
El-Halawani, Omnia
Lulu, Tasneem
Al-Nashash, Hasan
Al-Assaf, Yousef
2008 5TH INTERNATIONAL SYMPOSIUM ON MECHATRONICS & ITS APPLICATIONS, SYMPOSIUM PROCEEDINGS, 2008, : 149 - 153
[44] Computer Profiling for Preliminary Forensic Examination
Marrington, Andrew
Iqbal, Farkhund
Baggili, Ibrahim
DIGITAL FORENSICS AND CYBER CRIME, (ICDF2C 2013), 2014, 132 : 207 - 220
[45] From the Computer Incident Taxonomy to a Computer Forensic Examination Taxonomy
Altschaffel, Robert
Kiltz, Stefan
Ditlmann, Jana
IMF 2009: 5TH INTERNATIONAL CONFERENCE ON IT SECURITY INCIDENT MANAGEMENT AND IT FORENSIC, 2009, : 54 - +
[46] A Methodology for GUI Layer Redefinition Through Virtualization and Computer Vision
Silva, J. C.
Silva, J. L.
2014 14TH INTERNATIONAL CONFERENCE ON COMPUTATIONAL SCIENCE AND ITS APPLICATIONS (ICCSA), 2014, : 58 - 63
[47] INFORMATION-COMPUTER FORENSIC MODELS OF COMPUTER CRIMES AS THE ELEMENTS OF FORENSIC TECHNIQUES (USING THE EXAMPLE OF "CYBER BLACKMAIL")
Rossinskaya, E. R.
Semikalenova, A., I
VESTNIK TOMSKOGO GOSUDARSTVENNOGO UNIVERSITETA-PRAVO-TOMSK STATE UNIVERSITY JOURNAL OF LAW, 2021, (42): : 68 - 80
[48] Scientific evidence and expert testimony handbook: a guide for lawyers, criminal investigators and forensic specialists
Joseph, P
JOURNAL OF FORENSIC PSYCHIATRY, 1998, 9 (01): : 188 - 189
[49] Using Digital Forensic Readiness Model to Increase the Forensic Readiness of a Computer System
Kazadi, Jeff Mutunda
Jazri, Husin
2015 INTERNATIONAL CONFERENCE ON EMERGING TRENDS IN NETWORKS AND COMPUTER COMMUNICATIONS (ETNCC), 2015, : 131 - 137
[50] Open Computer Forensic Architecture a Way to Process Terabytes of Forensic Disk Images
Vermaas, Oscar
Simons, Joep
Meijer, Rob
OPEN SOURCE SOFTWARE FOR DIGITAL FORENSICS, 2010, : 45 - 67

← 1 2 3 4 5 →